Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3146/hPxV854kIA1Jdlm5ai8bPs4N3hE.roa
File: hPxV854kIA1Jdlm5ai8bPs4N3hE.roa (raw, json)
Hash identifier: OZpZLhv1Pn0wHT3a7LYJhKgviuinPd+XIOyRZUIgQ/k=
Subject key identifier: 84:FC:55:F3:9E:24:20:0D:49:76:59:B9:6A:2F:1B:3E:CE:0D:DE:11
Certificate issuer: /CN=5F478F43F0AF8FEACCB81EDC7A9C76143180C9AB
Certificate serial: 088D
Authority key identifier: 5F:47:8F:43:F0:AF:8F:EA:CC:B8:1E:DC:7A:9C:76:14:31:80:C9:AB
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/hPxV854kIA1Jdlm5ai8bPs4N3hE.roa
Signing time: Wed 05 Jul 2023 07:20:05 +0000
ROA not before: Wed 05 Jul 2023 07:20:05 +0000
ROA not after: Sat 06 Jan 2024 08:35:17 +0000
asID: 151492
IP address blocks: 103.186.136.0/24 maxlen: 24
103.186.137.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2189 (0x88d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5F478F43F0AF8FEACCB81EDC7A9C76143180C9AB
Validity
Not Before: Jul 5 07:20:05 2023 GMT
Not After : Jan 6 08:35:17 2024 GMT
Subject: CN=84FC55F39E24200D497659B96A2F1B3ECE0DDE11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:53:69:c1:ce:ee:94:59:b7:2a:f4:2c:ad:75:
0c:0c:dc:94:da:4f:01:18:fd:8f:55:e7:b0:7a:47:
79:a8:e5:4e:dc:cd:d7:4d:c2:51:ca:89:37:28:01:
b6:18:b9:f7:fe:8e:a3:ff:56:28:50:f2:19:b7:3c:
ab:cb:3f:50:f7:40:06:60:7b:98:f3:7a:4b:11:91:
bf:00:0c:e6:70:4b:9f:4d:04:e8:6a:b4:6b:c5:06:
7a:6a:17:01:eb:07:c6:fb:3d:55:f9:76:8e:af:09:
90:c1:e7:71:5b:4d:a7:d2:de:68:ae:f1:b0:8f:50:
6c:e5:a5:5d:98:b4:a0:47:67:f8:1c:4d:32:80:2c:
b2:58:f2:a2:7d:1a:5e:c8:fc:48:d7:58:d3:a6:ce:
44:98:38:5d:c8:b0:f7:11:8d:df:09:85:39:a6:24:
28:7c:44:5e:0d:f3:96:fd:9e:fd:9d:f2:a4:fb:66:
9f:bd:65:6b:85:99:82:b1:f1:7c:57:fb:f3:63:91:
ca:44:84:64:0d:10:2c:57:a7:32:39:8a:49:88:87:
50:28:dc:d4:1a:0f:d2:4b:5e:19:b9:14:0a:20:6e:
a2:7f:c2:39:e6:47:d0:4a:6b:f6:8e:c1:6e:40:d6:
3e:29:9e:aa:9f:ca:08:68:1a:a5:5f:ba:f5:54:10:
0f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FC:55:F3:9E:24:20:0D:49:76:59:B9:6A:2F:1B:3E:CE:0D:DE:11
X509v3 Authority Key Identifier:
keyid:5F:47:8F:43:F0:AF:8F:EA:CC:B8:1E:DC:7A:9C:76:14:31:80:C9:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/hPxV854kIA1Jdlm5ai8bPs4N3hE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.136.0/23
Signature Algorithm: sha256WithRSAEncryption
52:e4:2f:02:d8:28:cf:66:4b:25:06:63:ad:7f:3b:c6:54:02:
d2:d2:cf:d2:20:00:71:63:6f:3b:b7:cd:14:96:c3:37:a3:87:
75:43:36:66:73:25:08:60:12:a9:56:71:ce:96:3e:a4:77:23:
68:fd:28:49:50:c7:ea:d3:46:4d:5b:43:73:68:11:23:2b:2e:
c8:56:05:8b:c9:8f:ff:1b:5c:18:c1:96:d7:03:1e:9f:2d:2e:
fb:5d:ae:c5:12:26:25:90:29:55:60:d5:0e:e3:bf:6b:57:9e:
5d:8a:aa:31:21:64:6d:ee:dc:0a:5f:d7:ad:e6:26:e1:cd:5e:
08:4a:f4:0a:57:bf:a8:d3:e5:de:ba:48:dd:78:e3:24:ac:be:
a6:a5:f6:c6:7a:c9:11:27:89:11:37:8c:90:1b:83:a7:e0:e2:
e2:01:45:15:3d:77:30:53:f5:cc:fd:50:eb:a4:3f:4f:06:01:
8a:ea:5c:c0:27:20:48:62:6b:de:e4:d1:01:c8:d7:8e:6b:69:
0e:85:4b:a6:5b:7f:d9:e6:04:ee:0a:cb:61:b5:80:29:41:1f:
48:56:fc:8d:4f:51:07:e0:26:0c:10:fe:08:a8:3c:4b:6f:27:
f3:34:46:d2:95:7c:94:3d:e8:6d:af:5f:f6:e4:77:be:a9:29:
b3:40:a2:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 20 07:16:59 2023 by rpki-client on console-ams.rpki-client.org